PT-2016-1977 · Adobe · Acrobat+3
Published
2016-05-05
·
Updated
2016-12-01
·
CVE-2016-1092
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Adobe Reader versions prior to 11.0.16
Acrobat and Acrobat Reader DC Classic versions prior to 15.006.30172
Acrobat and Acrobat Reader DC Continuous versions prior to 15.016.20039
Description
The issue is related to a memory leak, allowing attackers to obtain sensitive information from process memory. This can be exploited by a remote attacker to gain confidential information. The vulnerability is associated with a lack of protection for internal data.
Recommendations
For Adobe Reader versions prior to 11.0.16, update to version 11.0.16 or later.
For Acrobat and Acrobat Reader DC Classic versions prior to 15.006.30172, update to version 15.006.30172 or later.
For Acrobat and Acrobat Reader DC Continuous versions prior to 15.016.20039, update to version 15.016.20039 or later.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Acrobat
Acrobat Reader Dc Classic
Acrobat Reader Dc Continuous
Reader